CVE-2018-10353

A SQL injection information disclosure vulnerability in Trend Micro Email Encryption Gateway 5.5 could allow a remote attacker to disclose sensitive information on vulnerable installations due to a flaw in the formChangePass class. Authentication is required to exploit this vulnerability.
References
Configurations

Configuration 1

cpe:2.3:a:trendmicro:email_encryption_gateway:*:*:*:*:*:*:*:*

Information

Published : 2018-05-23 04:29

Updated : 2018-06-22 02:34


NVD link : CVE-2018-10353

Mitre link : CVE-2018-10353

Products Affected
No products.
CWE